Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 7 replies
  • Answers 1 answer
  • Subscribers 8 subscribers
  • Views 2030 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Federated Sign In - Setup consequences

Andrew Thompson2

Hi,

 

I need to set up federated services between Azure AD and Sophos Central.

Currently Sophos is synced with our on-prem AD which is in a hybrid configuration with Azure.

 

I've read these two articles which seem pretty clear but I'd just like to clear up some doubts.

https://community.sophos.com/kb/en-us/133433

https://docs.sophos.com/central/Customer/help/en-us/central/Customer/concepts/ep_federatedsignin.html

 

- What will happen to the current synced users and any managed devices that they are assigned to?

- Are there any other considerations?

 

Thanks



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Andrew Thompson2

    Hi  

    They are talking about Sophos Central Enterprise dashboard admins.

    Central Enterprise dashboard is to manage multiple central consoles which are under different sub estates.

    To know more about it, please refer to this guide.

  • 0 in reply to Jasmin

    Thanks.

     

    I'm not really sure what is meant by this line though.

    "If an administrator is also an Enterprise admin they can't use the same Microsoft sign-in credentials to sign in to both consoles."

     

    Does this mean if our Enterprise admin uses the same credentials for both estates he will only be able to be that admin in one?

    If so which?

  • 0 in reply to Andrew Thompson2

    Hi  

    In that statement, they are talking about the Sophos Central Enterprise console and Sophos Central Admin Console regardless of any sub-estates.

    If you have enabled Sophos Central Enterprise Admin and any of your Sophos Central Admin console users are Enterprise Super Admin/ Admin, then above statement is applicable.

  • 0 in reply to Jasmin

    Thanks Jasmin!

    Just one more question.

    By enabling federative services will that duplicate all of the users in Central?

    Bearing in mind our on-prem AD is synced with Central and Azure.

     

    The impression I'm getting here is that they will be two seperate estates and won't show up in the same console.

     

  • 0 in reply to Andrew Thompson2

    Hi  

    It will not duplicate all of the users in Central. It just provides you with another way of logging into the Sophos Central dashboard. It just shows those users who log into Sophos Central not all of the users. You synced users will be there without any change.

    Enterprise Admin concept is different. Enterprise Super Admin can log into the Sophos Central Enterprise dashboard and Sophos Central Admin dashboard for any of the sub estates. Because of that, they have mentioned above two different consoles - Enterprise dashboard and Central Admin dashboard.

Unfiltered HTML
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?